ClearML/dropbear
1
0
Fork 0
mirror of https://github.com/clearml/dropbear synced 2025-02-07 13:21:15 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add release.sh --testrel, github action

Browse Source 
This makes github actions create a tarball sha256sum for comparison.
The release.sh script now works in a git repository too.
This commit is contained in:
Matt Johnston 2022-03-24 12:22:07 +08:00
parent 515db2d706
commit 02eb74fbec
2 changed files with 80 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
.github/workflows/tarball.yml vendored Normal file
View File

@ -0,0 +1,36 @@
name: tarball sha256sum
on:
push:
branches:
- master
jobs:
tarball:
runs-on: 'ubuntu-20.04'
steps:
- uses: actions/checkout@v2
- name: release.sh
run: ./release.sh --testrel | tee log1.txt
- name: extract output
run: |
grep ^SHA256 log1.txt > sha256sum.txt
sed 's/.*= *//' < sha256sum.txt > hash.txt
mv `tail -n1 log1.txt` rel.tar.bz2
- name: sha256sum
uses: actions/upload-artifact@v3
with:
name: sha256sum
path: |
sha256sum.txt
hash.txt
- name: tarball
# only keep for debugging
retention-days: 3
uses: actions/upload-artifact@v3
with:
name: tarball
path: rel.tar.bz2

38
release.sh
View File

@ -2,7 +2,21 @@
set -e set -e
VERSION=$(echo '#include "sysoptions.h"\necho DROPBEAR_VERSION' | cpp - | sh) if [ "$1" = '--testrel' ]; then
# --testrel won't check changelog version correctness and will build in a temporary dir
TESTREL=1
else
TESTREL=0
fi
VERSION=$(echo '#include "default_options.h"\n#include "sysoptions.h"\necho DROPBEAR_VERSION' | cpp -DHAVE_CRYPT - | sh)
if [ $TESTREL -eq 1 ]; then
echo Making test tarball for "$VERSION" ...
echo Not checking version mismatches.
WORKDIR=$(mktemp -d)
TARSUFFIX="-testrel"
else
echo Releasing version "$VERSION" ... echo Releasing version "$VERSION" ...
if ! head -n1 CHANGES | grep -q $VERSION ; then if ! head -n1 CHANGES | grep -q $VERSION ; then
echo "CHANGES needs updating" echo "CHANGES needs updating"
@ -13,6 +27,12 @@ if ! head -n1 debian/changelog | grep -q $VERSION ; then
echo "debian/changelog needs updating" echo "debian/changelog needs updating"
exit 1 exit 1
fi fi
WORKDIR=$PWD/..
TARSUFFIX=""
fi
RELDIR=$WORKDIR/dropbear-$VERSION
ARCHIVE=${RELDIR}${TARSUFFIX}.tar.bz2
head -n1 CHANGES head -n1 CHANGES
@ -22,8 +42,6 @@ else
TAR=gtar TAR=gtar
fi fi
RELDIR=$PWD/../dropbear-$VERSION
ARCHIVE=${RELDIR}.tar.bz2
if test -e $RELDIR; then if test -e $RELDIR; then
echo "$RELDIR exists" echo "$RELDIR exists"
exit 1 exit 1
@ -34,11 +52,18 @@ if test -e $ARCHIVE; then
exit 1 exit 1
fi fi
if [ -d .hg ]; then
hg archive "$RELDIR" || exit 2 hg archive "$RELDIR" || exit 2
rm "$RELDIR/.hgtags"
# .hg_archival.txt seems to differ between hg versions, isn't good for reproducibility # .hg_archival.txt seems to differ between hg versions, isn't good for reproducibility
rm "$RELDIR/.hg_archival.txt" rm "$RELDIR/.hg_archival.txt"
elif [ -d .git ]; then
git -c tar.umask=0022 archive --format tar -o /dev/stdout --prefix=dropbear-$VERSION/ HEAD | tar xf - -C $WORKDIR || exit 2
else
echo "This isn't a hg or git checkout"
exit 1
fi
chmod -R a+rX $RELDIR
RELDATE=$(head -n1 CHANGES | cut -d - -f 2) RELDATE=$(head -n1 CHANGES | cut -d - -f 2)
# timezone keeps it consistent, choose a plausible release time # timezone keeps it consistent, choose a plausible release time
@ -52,5 +77,8 @@ ls -l $ARCHIVE
openssl sha256 $ARCHIVE openssl sha256 $ARCHIVE
echo Done to echo Done to
echo "$ARCHIVE" echo "$ARCHIVE"
if [ $TESTREL -eq 0 ]; then
echo Sign it with echo Sign it with
echo gpg2 --detach-sign -a -u F29C6773 "$ARCHIVE" echo gpg2 --detach-sign -a -u F29C6773 "$ARCHIVE"
fi